Skip to content
This repository has been archived by the owner on Jul 24, 2024. It is now read-only.

Commit

Permalink
Lock request@<2.81.0
Browse files Browse the repository at this point in the history 
request@2.81.0 breaks Node < 4 compat.
  • Loading branch information
@xzyfer
xzyfer committed Nov 17, 2017
1 parent 40d1827 commit 187d8c9
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -68,7 +68,7 @@
"nan": "^2.3.2",
"node-gyp": "^3.3.1",
"npmlog": "^4.0.0",
"request": "^2.79.0",
"request": "~2.79.0",

This comment has been minimized.

Sign in to view

Copy link
@surfaceowl

surfaceowl Dec 21, 2017

@Xyzfer -- can you upgrade this TO 2.81.0? When I saw the title of the commit I overlooked the < symbol -- request version 2.81.0 would upgrade tunnel-agent dependency to 0.6.0 and eliminate a minor security vulnerability

This comment has been minimized.

Sign in to view

Copy link
@xzyfer

xzyfer Dec 21, 2017

Author Contributor

We cannot. See #2170
"sass-graph": "^2.2.4",
"stdout-stream": "^1.4.0",
"true-case-path": "^1.0.2"
Expand Down

0 comments on commit 187d8c9

Please sign in to comment.